CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-30477

An issue was discovered in Zulip Server before 3.4. A bug in the implementation of replies to messages sent by outgoing webhooks to private streams meant that an outgoing webhook bot could be used to send messages to private streams that the user was not intended to be able to send messages to.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 45.9%

CVSS Severity

CVSS v3 Score 4.3

CVSS v2 Score 4.0

References

Products affected by CVE-2021-30477

Zulip » Zulip Server » Version: 1.1.5

cpe:2.3:a:zulip:zulip_server:1.1.5
Zulip » Zulip Server » Version: 1.2.0

cpe:2.3:a:zulip:zulip_server:1.2.0
Zulip » Zulip Server » Version: 1.2.1

cpe:2.3:a:zulip:zulip_server:1.2.1
Zulip » Zulip Server » Version: 1.3.0

cpe:2.3:a:zulip:zulip_server:1.3.0
Zulip » Zulip Server » Version: 1.3.1

cpe:2.3:a:zulip:zulip_server:1.3.1
Zulip » Zulip Server » Version: 1.3.10

cpe:2.3:a:zulip:zulip_server:1.3.10
Zulip » Zulip Server » Version: 1.3.11

cpe:2.3:a:zulip:zulip_server:1.3.11
Zulip » Zulip Server » Version: 1.3.12

cpe:2.3:a:zulip:zulip_server:1.3.12
Zulip » Zulip Server » Version: 1.3.13

cpe:2.3:a:zulip:zulip_server:1.3.13
Zulip » Zulip Server » Version: 1.3.2

cpe:2.3:a:zulip:zulip_server:1.3.2
Zulip » Zulip Server » Version: 1.3.3

cpe:2.3:a:zulip:zulip_server:1.3.3
Zulip » Zulip Server » Version: 1.3.4

cpe:2.3:a:zulip:zulip_server:1.3.4
Zulip » Zulip Server » Version: 1.3.5

cpe:2.3:a:zulip:zulip_server:1.3.5
Zulip » Zulip Server » Version: 1.3.6

cpe:2.3:a:zulip:zulip_server:1.3.6
Zulip » Zulip Server » Version: 1.3.7

cpe:2.3:a:zulip:zulip_server:1.3.7
Zulip » Zulip Server » Version: 1.3.8

cpe:2.3:a:zulip:zulip_server:1.3.8
Zulip » Zulip Server » Version: 1.3.9

cpe:2.3:a:zulip:zulip_server:1.3.9
Zulip » Zulip Server » Version: 1.4.0

cpe:2.3:a:zulip:zulip_server:1.4.0
Zulip » Zulip Server » Version: 1.4.1

cpe:2.3:a:zulip:zulip_server:1.4.1
Zulip » Zulip Server » Version: 1.4.2

cpe:2.3:a:zulip:zulip_server:1.4.2
Zulip » Zulip Server » Version: 1.4.3

cpe:2.3:a:zulip:zulip_server:1.4.3
Zulip » Zulip Server » Version: 1.5.0

cpe:2.3:a:zulip:zulip_server:1.5.0
Zulip » Zulip Server » Version: 1.5.1

cpe:2.3:a:zulip:zulip_server:1.5.1
Zulip » Zulip Server » Version: 1.5.2

cpe:2.3:a:zulip:zulip_server:1.5.2
Zulip » Zulip Server » Version: 1.6.0

cpe:2.3:a:zulip:zulip_server:1.6.0
Zulip » Zulip Server » Version: 1.7.0

cpe:2.3:a:zulip:zulip_server:1.7.0
Zulip » Zulip Server » Version: 1.7.1

cpe:2.3:a:zulip:zulip_server:1.7.1
Zulip » Zulip Server » Version: 1.7.2

cpe:2.3:a:zulip:zulip_server:1.7.2
Zulip » Zulip Server » Version: 1.8.0

cpe:2.3:a:zulip:zulip_server:1.8.0
Zulip » Zulip Server » Version: 1.8.1

cpe:2.3:a:zulip:zulip_server:1.8.1
Zulip » Zulip Server » Version: 1.9.0

cpe:2.3:a:zulip:zulip_server:1.9.0
Zulip » Zulip Server » Version: 1.9.1

cpe:2.3:a:zulip:zulip_server:1.9.1
Zulip » Zulip Server » Version: 1.9.2

cpe:2.3:a:zulip:zulip_server:1.9.2
Zulip » Zulip Server » Version: 2.0.0

cpe:2.3:a:zulip:zulip_server:2.0.0
Zulip » Zulip Server » Version: 2.0.1

cpe:2.3:a:zulip:zulip_server:2.0.1
Zulip » Zulip Server » Version: 2.0.2

cpe:2.3:a:zulip:zulip_server:2.0.2
Zulip » Zulip Server » Version: 2.0.3

cpe:2.3:a:zulip:zulip_server:2.0.3
Zulip » Zulip Server » Version: 2.0.4

cpe:2.3:a:zulip:zulip_server:2.0.4
Zulip » Zulip Server » Version: 2.0.5

cpe:2.3:a:zulip:zulip_server:2.0.5
Zulip » Zulip Server » Version: 2.0.6

cpe:2.3:a:zulip:zulip_server:2.0.6
Zulip » Zulip Server » Version: 2.0.7

cpe:2.3:a:zulip:zulip_server:2.0.7
Zulip » Zulip Server » Version: 2.0.8

cpe:2.3:a:zulip:zulip_server:2.0.8
Zulip » Zulip Server » Version: 2.1.0

cpe:2.3:a:zulip:zulip_server:2.1.0
Zulip » Zulip Server » Version: 2.1.1

cpe:2.3:a:zulip:zulip_server:2.1.1
Zulip » Zulip Server » Version: 2.1.2

cpe:2.3:a:zulip:zulip_server:2.1.2
Zulip » Zulip Server » Version: 2.1.3

cpe:2.3:a:zulip:zulip_server:2.1.3
Zulip » Zulip Server » Version: 2.1.4

cpe:2.3:a:zulip:zulip_server:2.1.4
Zulip » Zulip Server » Version: 2.1.5

cpe:2.3:a:zulip:zulip_server:2.1.5
Zulip » Zulip Server » Version: 2.1.6

cpe:2.3:a:zulip:zulip_server:2.1.6
Zulip » Zulip Server » Version: 2.1.7

cpe:2.3:a:zulip:zulip_server:2.1.7
Zulip » Zulip Server » Version: 3.0

cpe:2.3:a:zulip:zulip_server:3.0
Zulip » Zulip Server » Version: 3.1

cpe:2.3:a:zulip:zulip_server:3.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-30477

Products

Pricing

Contact Us